Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » Cardholder Data

Cardholder Data

Cardholder data (CD) consists of all personally identifiable information (PII), such as the cardholder’s name, card number, expiration date, and CVV security code of the individual with a credit or debit card. This is sensitive card information subject to security regulations like PCI DSS. Banks, payment merchants, and other entities that store and process this data must have adequate security measures to protect the cardholder’s data from security threats. Failure to protect cardholder data can land you in legal problems, and there are financial penalties as well.

Additional reading

Guide to ISO 27001 for Small Businesses

Your small business is important for continued economic prosperity. About 90% of the world’s businesses are small and medium-sized enterprises, and they are innovating,  creating employment, and stimulating growth. This guide to ISO 27001 for small businesses is designed to help you navigate the complexities of ISO 27001 compliance. With many SMEs competing with larger…

SOX Testing Explained: Steps, Methods, and Best Practices 

For public companies, SOX compliance isn’t optional. It ensures that financial reporting is accurate, internal controls are reliable, and stakeholders, especially investors, can trust your numbers. That’s where SOX testing comes in. But what exactly does SOX testing involve? Who needs to do it, and how is it typically carried out? In this article, we’ll…

NIST Risk Assessment: Identifying and Managing Security Risks

TL,DR: NIST risk assessment (SP 800-30) operates across 3 tiers: organization-wide, specific business areas, and information systems. Costs range from $5,000 to $20,000 for initial assessment, with remediation reaching $35,000 to $115,000 The process follows 4 steps: prepare by establishing context, conduct the assessment by identifying threats, communicate results to stakeholders, and maintain through ongoing…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales